Senior Cloud Security Engineer
- Employer
- Brighthouse Financial
- Location
- Charlotte, North Carolina
- Salary
- Not Specified
- Closing date
- Aug 24, 2019
View more
- Category
- IT
- Job Type
- Not Specified
- Career Level
- Not Specified
Job Details
Brighthouse Financial is on a mission to help people achieve financial security. As one of the largest providers of annuities and life insurance in the U.S., we specialize in products designed to help people protect what theyve earned and ensure it lasts. We are built on a foundation of experience and knowledge, which allows us to keep our promises and provide the value they deserve.
At Brighthouse Financial, were fostering a culture where diverse backgrounds and experiences are celebrated, and different ideas are heard and respected. We believe that by creating an inclusive workplace, were better able to attract and retain our talent, provide valuable solutions that meet the needs of our advisors and their clients, and deliver on our mission of helping more people achieve financial security. Were seeking passionate, high-performing team member to join us. Sound like you? Read on.
How This Role Contributes to Brighthouse Financial:
Reporting into the Head of Cyber Security Operations of Brighthouse Financial, the Sr. Security Engineer (SSE) Professional will be part of the Brighthouse Computer Security Operations team that is accountable for ensuring security systems and applications are delivered, maintained and hardened to maximize cyber security investments. This role will be responsible for overseeing endpoint, network, cloud and messaging technologies designed to identify, prevent, protect, comply, monitor and respond to everyday cyber-security threats facing Brighthouses infrastructure, networks and connected cloud ecosystems. The Sr. Security Engineer will be part of dynamic and matrixed team of security professionals that will be instrumental in maturing Brighthouses next generation Security Operational model and Security Operations Center (SOC) technologies. The individual in this role will work as the primary security engineering resource to plan, implement, monitor and upgrade security technologies across the information security stack within the Brighthouse IT environment. He/she will be responsible for ensuring that the organizations data and systems are protected by the proper implementation of purpose-built security controls and related technology. This role will be accountable for testing and identifying network and system vulnerabilities for core and cloud connected systems. This role will also play a key part in supporting incident response team activities by collaborating cyber related events. The Sr. Security Engineer will be a key member of the change advisory and architectural review boards and will also partner closely with Cyber Security, Data Protection, Solution Architecture and MSSP personnel.Key Responsibilities:
- Provide technical leadership and expertise with the deployment and maintenance of security systems and controls to support Brighthouse Financial systems and applications
- Responsible for the planning, design, installation, maintenance and support of security control technologies including but not limited; unified threat managed firewalls, intrusion prevention & detection systems, enterprise endpoint detection and response, anti-virus and patching solutions, data leakage prevention, two-factor authentication, threat detection, vulnerability scanners, web-filtering, VPNs, cloud protections and messaging protection technologies
- Collaborates with IT staff, architecture and business units to assess risk and address security issues
- Provide expertise and guidance surrounding cyber related issues while recommending solutions that mitigate and eliminate risk
- Defines security requirements and reviews systems to determine if they have been designed to comply with established security standards; develops new standards as necessary
- Participate in forensics and post-mortem investigations of Information Security incidents while collaborating on investigate reporting
- Ensure that controls are in place and managed properly to meet legal and regulatory compliance on all network and system infrastructures
- Assist in the enforcement of security policies from planning, technology safeguards and remediation for data, software applications, systems including cloud connected infrastructure and systems
- Ensure the development of and adherence to industry standards and best practices for all Information Security related systems and applications
- Validates and tests security architecture and design solutions to produce detailed engineering specifications, recommend vendor technologies where applicable
- Reviews and recommends the installation, modification or replacement of hardware or software components and any configuration changes that affect or baseline security risk posture
- Leads InfoSec development, testing and assurance functions to ensure that projects are securely delivered and meets requirements
- Builds and maintains relationships with teams and third parties on security development and support issues.
- Be a member of the Security Incident Response Team, providing a high level of expertise in support of expedited problem resolution
- Serve as key engineering support for in-house security systems and technology and MSSP supported technology and other reporting channels
- Drive consistent operating system (server, endpoint, virtual) hardening, access configuration, upgrades, patching, logging and vulnerability resilience
- Perform highly technical security technology control configuration reviews, recommend and apply (directly or through oversight)
- Perform security gap assessments on in place security deployments, make recommendations for continued cyber resilience hardening
Essential Business Experience and Technical Skills:
-
7+ years experience in cybersecurity, with a system and network security engineering background
Highly technical and analytical with a proven diverse IT and security background, preferred 5+ years supporting IT Operations, networking or system administration
Experience with security validation teaming to identify and remediate issues rapidly
Experience in cloud computing technologies, including software, infrastructure and platform-as-a-service, as well as public, private, and hybrid environments
Experience in successful in delivering vulnerability and penetration testing requirements
Experience managing SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, Cloud Access Security Brokers (CASB), data loss prevention (DLP) and other network and system monitoring tools
Extensive expertise in developing and supporting complex security solutions is required.
Previous Network Engineering or Systems Engineering background preferred.
Experience using scripting languages to automate tasks and manipulate data; programming experience is a plus.
System administration experience in a Windows, Linux and Unix environment.
Experience securing web applications and a strong understanding of web application design, function, and Secure Software Development Lifecycle
Experience developing technical documents and procedures, topology maps and with various software applications.
Ability to explain complex ideas and concepts to both a technical and nontechnical audience, both verbally and written
Solid understanding of security operations in interconnected cloud environments such as Azure, AWS, VMware and other SaaS environments
Ability to communicate and navigate across cross-functional teams and providers
Good understanding of cyber risk attack approaches (e.g. lateral movement, indicators of compromise, privilege escalation), indicator of compromises and persistent threats
Proven experience in supporting security operations and managing solutions for multiple business units and locations
Knowledge of laws, regulations, guidelines, and frameworks within the financial services industry that mandate information security and information risk management requirements such as NY-DFS, FFIEC, NIST, COBIT, ISO27001, GLBA, OCC Heightened Standards, etc.
Ability to effectively execute concurrent activities and maintain focus on key details during times of crisis and heightened pressure
Enjoys working in a growth oriented, entrepreneurial, high-energy environment
Certification(s) preferred - Certified Information Systems Security Professional (CISSP)
Company
Why Brighthouse Financial
We’re on a mission to help people create a better financial future. Drawing on our history as part of MetLife, Inc., we will help our customers achieve financial security. Our experience has taught us that it’s time for something new: a simple and transparent alternative to an industry that customers often feel is complex, confusing, and costly.
Benefits
Brighthouse Savings Plan
Achieve your long-term financial goals by combining your contributions with the company match and annual profit sharing contribution
Healthcare Gain
Peace of mind and care for you and your family by participating in our medical/pharmacy, dental and vision plans.
Income Protection
Protect your loved ones and prepare for the unexpected with company provided life and disability programs.
Work Life Balance
Live a fuller life and take time to recharge with our competitive offering of holidays, paid time off, parental leave, and much more.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert